Lucene search
K

8 matches found

OSV
OSV
added 2025/09/05 12:42 p.m.5 views

OESA-2025-2133 libtpms security update

A library providing TPM functionality for VMs. Targeted for integration into Qemu. Security Fixes: Libtpms is a library that targets the integration of TPM functionality into hypervisors, primarily into Qemu. Libtpms, which is derived from the TPM 2.0 reference implementation code published by th...

5.9CVSS7.3AI score0.00135EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2025/05/06 7:0 a.m.4 views

Qemu-kvm: net: assertion failure in update_sctp_checksum()

...

5.5CVSS6.6AI score0.00445EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2024/06/13 12:0 a.m.5 views

The vulnerability of the file system for pervasive access 9p (9pfs) in the QEMU hardware emulation software allows a perpetrator to circumvent existing access control policies.

The vulnerability of the 9pfs file system, a hypervisor-based emulator of QEMU, is related to the absence of a prohibition on opening specific files on the host side. Exploiting this vulnerability can allow a perpetrator to circumvent existing access control policies...

7.1CVSS6.8AI score0.00373EPSS
Exploits0References7Affected Software4
RedhatCVE
RedhatCVE
added 2020/03/29 7:56 a.m.52 views

CVE-2019-14835

A buffer overflow flaw was found in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this fla...

7.8CVSS1.8AI score0.00627EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2019/09/23 11:38 a.m.2 views

kernel: vhost-net: guest to host kernel escape during migration

A buffer overflow flaw was found in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this fla...

7.8CVSS7.3AI score0.00627EPSS
Exploits1References6
OSV
OSV
added 2019/03/21 4:1 p.m.2 views

UBUNTU-CVE-2019-8934

hw/ppc/spapr.c in QEMU through 3.1.0 allows Information Exposure because the hypervisor shares the /proc/device-tree/system-id and /proc/device-tree/model system attributes with a guest...

3.3CVSS6.7AI score0.00599EPSS
Exploits1References3
Kitploit
Kitploit
added 2016/06/10 9:55 p.m.194 views

Detux - The Multiplatform Linux Sandbox

Detux is a sandbox developed to do traffic analysis of the Linux malwares and capture the IOCs by doing so. QEMU hypervisor is used to emulate Linux Debian for various CPU architectures. The following CPUs are currently supported: x86 x86-64 ARM MIPS MIPSEL Use the Live version now:...

7AI score
Exploits0References1
OSV
OSV
added 2015/04/01 2:59 p.m.1 views

DEBIAN-CVE-2015-2756

QEMU, as used in Xen 3.3.x through 4.5.x, does not properly restrict access to PCI command registers, which might allow local HVM guest users to cause a denial of service non-maskable interrupt and host crash by disabling the 1 memory or 2 I/O decoding for a PCI Express device and then accessing...

4.9CVSS7.9AI score0.0045EPSS
Exploits0References1
Rows per page
Query Builder